$ rpki-client -vvf ca.nat.moe/repo/NATOLAB/2/3134312e3139332e32312e302f32342d3234203d3e20323035303538.roa File: 3134312e3139332e32312e302f32342d3234203d3e20323035303538.roa (raw, json) Hash identifier: u/Hdkn/bDhSA2Kx0tSKXqePo0TFE5YN9sZzI5Y2J1Jo= Subject key identifier: 70:D6:77:86:0E:A8:B9:EA:B1:04:85:E5:E3:6C:0F:9E:A0:99:4B:CE Certificate issuer: /CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Certificate serial: 7B9E7B3D046B9B2BB7F534941AE0FABBF5D0F9BB Authority key identifier: 16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject info access: rsync://ca.nat.moe/repo/NATOLAB/2/3134312e3139332e32312e302f32342d3234203d3e20323035303538.roa Signing time: Wed 18 Jun 2025 21:52:33 +0000 ROA not before: Wed 18 Jun 2025 21:47:33 +0000 ROA not after: Wed 17 Jun 2026 21:52:33 +0000 asID: 205058 IP address blocks: 141.193.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Jun 2025 00:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:9e:7b:3d:04:6b:9b:2b:b7:f5:34:94:1a:e0:fa:bb:f5:d0:f9:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18 Validity Not Before: Jun 18 21:47:33 2025 GMT Not After : Jun 17 21:52:33 2026 GMT Subject: CN=70D677860EA8B9EAB10485E5E36C0F9EA0994BCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c0:fe:a9:46:0a:13:f3:5e:00:0d:c9:b2:65: 47:e2:fa:86:68:31:9e:ac:0d:53:a4:d8:60:f9:07: 65:63:b2:3a:0f:67:db:62:df:bb:ef:fc:da:d5:b9: 4c:05:bd:08:df:b9:04:3f:3f:10:c5:00:a1:dc:05: 31:b3:c9:b7:a6:15:74:70:f9:cd:45:17:9b:f0:d0: bb:12:0b:27:fd:71:14:86:7c:b0:ea:ca:e1:3d:ee: 60:37:dc:ae:2f:66:8d:ca:67:5a:97:e4:ff:ac:81: 5c:b9:7f:9d:b3:7b:cb:4e:8d:aa:c2:ca:76:2d:da: fa:d1:49:25:de:3d:ac:00:d9:51:31:e3:84:34:86: 71:5f:b0:a5:35:3a:c7:1e:60:66:1e:d3:e2:55:7c: 4c:b4:a0:44:b3:c9:b5:52:04:f9:36:24:ae:28:fa: d5:7a:82:ea:d7:08:b4:d7:9b:af:42:38:01:0d:81: 29:d0:42:9d:35:88:5a:44:50:82:0b:42:18:d6:26: 00:99:9c:27:e5:2b:b8:92:19:2c:af:6b:d3:73:1d: 68:25:dd:25:84:94:09:5f:cc:69:b9:19:d4:13:8a: 59:14:85:5c:92:be:ea:29:ec:54:2e:ab:be:5f:04: 63:dc:bf:c3:49:dd:f1:bb:ca:8a:71:39:a7:1c:01: f9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D6:77:86:0E:A8:B9:EA:B1:04:85:E5:E3:6C:0F:9E:A0:99:4B:CE X509v3 Authority Key Identifier: keyid:16:25:7C:19:66:8C:67:13:C4:01:2B:10:1E:64:62:66:CD:77:B5:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://ca.nat.moe/repo/NATOLAB/2/16257C19668C6713C4012B101E646266CD77B50D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/04c12c6c-ab0e-4d03-b9c8-6c3592368c77/5093cbb46f69901c119a2be1083df2aa2b433bba3f960fbc18.cer Subject Information Access: Signed Object - URI:rsync://ca.nat.moe/repo/NATOLAB/2/3134312e3139332e32312e302f32342d3234203d3e20323035303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.193.21.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:af:c3:05:0b:2d:72:2c:c1:61:4e:03:b6:aa:d5:be:ea:79: f0:9e:a7:f4:40:fe:15:e3:3b:23:84:39:fe:56:42:74:e4:a1: 87:05:77:87:48:60:1b:0b:77:ad:6b:69:25:93:60:cb:77:5c: 0e:e9:0d:c1:0a:cc:a8:6b:d5:b4:79:9f:1a:9b:73:fd:dd:73: 3d:1a:c6:19:c2:8e:b2:9d:94:87:c3:ab:0d:37:e0:1a:29:50: fe:0a:7c:60:10:46:8d:9a:24:d3:af:13:bf:56:4d:ca:2a:55: 47:13:43:c4:26:29:30:52:7a:fa:1f:36:42:02:a1:e7:6c:a8: b7:96:96:82:f9:ff:49:de:75:7a:2e:71:2a:96:92:c2:ea:a3: c0:10:93:96:56:37:1f:26:4d:e2:90:b1:d8:c1:15:80:d2:03: d0:6b:45:77:3c:36:51:1f:96:74:3a:d1:a9:ce:a6:3a:34:19: 1a:3b:f2:91:fa:59:56:9e:41:80:b4:a4:14:fe:09:c9:cf:63: 33:49:f6:97:a6:41:00:c1:9e:df:55:65:4a:93:0c:6b:8c:fa: bd:f1:42:25:64:23:c2:6e:93:c2:e2:88:3e:ef:a2:e7:3c:e4: 2c:bb:53:4d:2f:cc:6c:01:64:1e:5d:28:f8:93:35:1c:18:15: 68:76:a4:fe -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIUe557PQRrmyu39TSUGuD6u/XQ+bswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTA5M2NiYjQ2ZjY5OTAxYzExOWEyYmUxMDgzZGYyYWEy YjQzM2JiYTNmOTYwZmJjMTgwHhcNMjUwNjE4MjE0NzMzWhcNMjYwNjE3MjE1MjMz WjAzMTEwLwYDVQQDEyg3MEQ2Nzc4NjBFQThCOUVBQjEwNDg1RTVFMzZDMEY5RUEw OTk0QkNFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsD+qUYKE/Ne AA3JsmVH4vqGaDGerA1TpNhg+QdlY7I6D2fbYt+77/za1blMBb0I37kEPz8QxQCh 3AUxs8m3phV0cPnNRReb8NC7Egsn/XEUhnyw6srhPe5gN9yuL2aNymdal+T/rIFc uX+ds3vLTo2qwsp2Ldr60Ukl3j2sANlRMeOENIZxX7ClNTrHHmBmHtPiVXxMtKBE s8m1UgT5NiSuKPrVeoLq1wi015uvQjgBDYEp0EKdNYhaRFCCC0IY1iYAmZwn5Su4 khksr2vTcx1oJd0lhJQJX8xpuRnUE4pZFIVckr7qKexULqu+XwRj3L/DSd3xu8qK cTmnHAH59QIDAQABo4ICYjCCAl4wHQYDVR0OBBYEFHDWd4YOqLnqsQSF5eNsD56g mUvOMB8GA1UdIwQYMBaAFBYlfBlmjGcTxAErEB5kYmbNd7UNMA4GA1UdDwEB/wQE AwIHgDBfBgNVHR8EWDBWMFSgUqBQhk5yc3luYzovL2NhLm5hdC5tb2UvcmVwby9O QVRPTEFCLzIvMTYyNTdDMTk2NjhDNjcxM0M0MDEyQjEwMUU2NDYyNjZDRDc3QjUw RC5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8v cnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1l ODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvZjYwYzlmMzItYTg3Yy00MzM5LWEy ZjMtNjI5OWEzYjAyZTI5LzA0YzEyYzZjLWFiMGUtNGQwMy1iOWM4LTZjMzU5MjM2 OGM3Ny81MDkzY2JiNDZmNjk5MDFjMTE5YTJiZTEwODNkZjJhYTJiNDMzYmJhM2Y5 NjBmYmMxOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzov L2NhLm5hdC5tb2UvcmVwby9OQVRPTEFCLzIvMzEzNDMxMmUzMTM5MzMyZTMyMzEy ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzUzMDM1Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACN wRUwDQYJKoZIhvcNAQELBQADggEBAH6vwwULLXIswWFOA7aq1b7qefCep/RA/hXj OyOEOf5WQnTkoYcFd4dIYBsLd61raSWTYMt3XA7pDcEKzKhr1bR5nxqbc/3dcz0a xhnCjrKdlIfDqw034BopUP4KfGAQRo2aJNOvE79WTcoqVUcTQ8QmKTBSevofNkIC oedsqLeWloL5/0nedXoucSqWksLqo8AQk5ZWNx8mTeKQsdjBFYDSA9BrRXc8NlEf lnQ60anOpjo0GRo78pH6WVaeQYC0pBT+CcnPYzNJ9pemQQDBnt9VZUqTDGuM+r3x QiVkI8Juk8LiiD7vouc85Cy7U00vzGwBZB5dKPiTNRwYFWh2pP4= -----END CERTIFICATE-----Generated at Thu Jun 19 06:58:06 2025 by rpki-client